Description: Add check for buffer overflow with malformed input files
 This was later re-found and became CVE-2014-8123. 
Author: <eriks@debian.org>
Bug-Debian: http://bugs.debian.org/407015
Bug-Debian: https://bugs.debian.org/771768
Forwarded: http://seclists.org/oss-sec/2014/q4/870
Last-Update: 2016-01-11

--- antiword-0.37~/wordole.c	2005-08-26 21:49:57.000000000 +0200
+++ antiword-0.37/wordole.c	2009-06-03 22:31:15.948014682 +0200
@@ -259,6 +259,10 @@
 		}
 		tNameSize = (size_t)usGetWord(0x40, aucBytes);
 		tNameSize = (tNameSize + 1) / 2;
+		if ( tNameSize > sizeof(atPPSlist[iIndex].szName)) {
+			werr(0, "Name Size of PPS %d is too large", iIndex);
+			tNameSize = sizeof(atPPSlist[iIndex].szName);
+		}
 		vName2String(atPPSlist[iIndex].szName, aucBytes, tNameSize);
 		atPPSlist[iIndex].ucType = ucGetByte(0x42, aucBytes);
 		if (atPPSlist[iIndex].ucType == 5) {
ch'/></form></td></tr>
<tr><td class='sub'>Wojtek's customized Guix</td><td class='sub right'></td></tr></table>
<table class='tabs'><tr><td>
<a href='/guix/about/'>about</a><a href='/guix/'>summary</a><a href='/guix/refs/?id=89da127035737bdf922bc566970c5506c2e01b00'>refs</a><a class='active' href='/guix/log/gnu/packages/tor.scm'>log</a><a href='/guix/tree/gnu/packages/tor.scm?id=89da127035737bdf922bc566970c5506c2e01b00'>tree</a><a href='/guix/commit/gnu/packages/tor.scm?id=89da127035737bdf922bc566970c5506c2e01b00'>commit</a><a href='/guix/diff/gnu/packages/tor.scm?id=89da127035737bdf922bc566970c5506c2e01b00'>diff</a></td><td class='form'><form class='right' method='get' action='/guix/log/gnu/packages/tor.scm'>
<input type='hidden' name='id' value='89da127035737bdf922bc566970c5506c2e01b00'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/guix/log/?id=89da127035737bdf922bc566970c5506c2e01b00'>root</a>/<a href='/guix/log/gnu?id=89da127035737bdf922bc566970c5506c2e01b00'>gnu</a>/<a href='/guix/log/gnu/packages?id=89da127035737bdf922bc566970c5506c2e01b00'>packages</a>/<a href='/guix/log/gnu/packages/tor.scm?id=89da127035737bdf922bc566970c5506c2e01b00'>tor.scm</a></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/guix/log/gnu/packages/tor.scm?id=89da127035737bdf922bc566970c5506c2e01b00&amp;showmsg=1'>Expand</a>)</th><th class='left'>Author</th></tr>
<tr><td><span title='2019-12-10 00:29:22 +0100'>2019-12-10</span></td><td><a href='/guix/commit/gnu/packages/tor.scm?id=96e1866605f3e1dd94ec3aa3cd8c41af45589b64'>gnu: tor: Update to 0.4.2.5.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/packages/tor.scm (tor): Update to 0.4.2.5.
</span></span></td><td>Tobias Geerinckx-Rice</td></tr>
<tr><td><span title='2019-10-15 22:35:25 -0500'>2019-10-15</span></td><td><a href='/guix/commit/gnu/packages/tor.scm?id=3268fba3d2a13971e1c3d6306985a4fe8c425351'>gnu: onionshare: Update to 2.2.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/packages/tor.scm (onionshare): Update to 2.2.
[inputs]: Add python-flask-httpauth.
[arguments]: Adjust 'fix-install-path' to new file name.
[description]: Improve wording and clarity.
[license]: Add expat license for bundled jquery.
</span></span></td><td>Eric Bavier</td></tr>
<tr><td><span title='2019-09-19 19:27:37 +0200'>2019-09-19</span></td><td><a href='/guix/commit/gnu/packages/tor.scm?id=664aa1844cae6e5175ace879301cd81b83c8cc89'>gnu: tor: Update to 0.4.1.6.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/packages/tor.scm (tor): Update to 0.4.1.6.
</span></span></td><td>Tobias Geerinckx-Rice</td></tr>
<tr><td><span title='2019-08-20 22:34:24 +0200'>2019-08-20</span></td><td><a href='/guix/commit/gnu/packages/tor.scm?id=5485148c76e178c9e9ae6d8ecb5f948e0c12028f'>gnu: tor: Update to 0.4.1.5.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/packages/tor.scm (tor): Update to 0.4.1.5.
</span></span></td><td>Tobias Geerinckx-Rice</td></tr>
<tr><td><span title='2019-08-13 22:34:57 -0500'>2019-08-13</span></td><td><a href='/guix/commit/gnu/packages/tor.scm?id=4afdb792497472b968d818a3ed942beb70210389'>gnu: onionshare: Upgrade to 2.1.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/packages/tor.scm (onionshare): Upgrade to 2.1.
[arguments]: Rename "tests" phase to "check".  Set home directory for tests.
Remove reference to closed upstream bug.
[inputs]: Add python-pycrypto and python-pysocks.
[license]: Remove bsd-3 license; relevant file no longer present.
</span></span></td><td>Eric Bavier</td></tr>
<tr><td><span title='2019-07-22 16:22:22 +0200'>2019-07-22</span></td><td><a href='/guix/commit/gnu/packages/tor.scm?id=ec0de9d8bcc46bb6911b1f9ea135a354bac65b1a'>gnu: zstd: Move libraries to separate outputs.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/packages/compression.scm (zstd)[outputs]: New field.
[arguments]: Add phase 'adjust-libary-locations'.  Pass LIBDIR and INCLUDEDIR
in &lt;#:make-flags&gt;.
* gnu/packages/backup.scm (borg)[inputs]: Change ZSTD to ZSTD:LIB.
* gnu/packages/sync.scm (casync)[inputs]: Likewise.
* gnu/packages/tor.scm (tor)[inputs]: Likewise.
* gnu/packages/linux.scm (btrfs-progs)[inputs]: Likewise.  Add ZSTD:STATIC.
</span></span></td><td>Marius Bakke</td></tr>
<tr><td><span title='2019-05-05 00:10:24 +0200'>2019-05-05</span></td><td><a href='/guix/commit/gnu/packages/tor.scm?id=fbc25313955fa3b4851da3b4a23598185278c04e'>gnu: tor: Remove explicit hardening flags.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/packages/tor.scm (tor)[arguments]: Remove #:configure-flags that
merely confirm the defaults.
</span></span></td><td>Tobias Geerinckx-Rice</td></tr>
<tr><td><span title='2019-05-03 15:22:22 +0200'>2019-05-03</span></td><td><a href='/guix/commit/gnu/packages/tor.scm?id=c8bb86f51c69f000d7b9ffa7fe8ee7d6544e38e6'>gnu: tor: Update to 0.4.0.5.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/packages/tor.scm (tor): Update to 0.4.0.5.
</span></span></td><td>Tobias Geerinckx-Rice</td></tr>

Age	Commit message (Expand)	Author
2019-12-10	gnu: tor: Update to 0.4.2.5....* gnu/packages/tor.scm (tor): Update to 0.4.2.5.	Tobias Geerinckx-Rice
2019-10-15	gnu: onionshare: Update to 2.2....* gnu/packages/tor.scm (onionshare): Update to 2.2. [inputs]: Add python-flask-httpauth. [arguments]: Adjust 'fix-install-path' to new file name. [description]: Improve wording and clarity. [license]: Add expat license for bundled jquery.	Eric Bavier
2019-09-19	gnu: tor: Update to 0.4.1.6....* gnu/packages/tor.scm (tor): Update to 0.4.1.6.	Tobias Geerinckx-Rice
2019-08-20	gnu: tor: Update to 0.4.1.5....* gnu/packages/tor.scm (tor): Update to 0.4.1.5.	Tobias Geerinckx-Rice
2019-08-13	gnu: onionshare: Upgrade to 2.1....* gnu/packages/tor.scm (onionshare): Upgrade to 2.1. [arguments]: Rename "tests" phase to "check". Set home directory for tests. Remove reference to closed upstream bug. [inputs]: Add python-pycrypto and python-pysocks. [license]: Remove bsd-3 license; relevant file no longer present.	Eric Bavier
2019-07-22	gnu: zstd: Move libraries to separate outputs....* gnu/packages/compression.scm (zstd)[outputs]: New field. [arguments]: Add phase 'adjust-libary-locations'. Pass LIBDIR and INCLUDEDIR in <#:make-flags>. * gnu/packages/backup.scm (borg)[inputs]: Change ZSTD to ZSTD:LIB. * gnu/packages/sync.scm (casync)[inputs]: Likewise. * gnu/packages/tor.scm (tor)[inputs]: Likewise. * gnu/packages/linux.scm (btrfs-progs)[inputs]: Likewise. Add ZSTD:STATIC.	Marius Bakke
2019-05-05	gnu: tor: Remove explicit hardening flags....* gnu/packages/tor.scm (tor)[arguments]: Remove #:configure-flags that merely confirm the defaults.	Tobias Geerinckx-Rice
2019-05-03	gnu: tor: Update to 0.4.0.5....* gnu/packages/tor.scm (tor): Update to 0.4.0.5.	Tobias Geerinckx-Rice